Mur d'images - Cyberveille

curated by Decio

Bad Likert Judge: A Novel Multi-Turn Technique to Jailbreak LLMs by Misusing Their Evaluation Capability

Effective Phishing Campaign Targeting European Companies and Organizations

Lateral Movement on macOS: Unique and Popular Techniques and In-the-Wild Examples

Jumpy Pisces Engages in Play Ransomware

Chinese APT Abuses VSCode to Target Government in Asia

Spoofed GlobalProtect Used to Deliver Unique WikiLoader Variant

Leaked Environment Variables Allow Large-Scale Extortion Operation of Cloud Environments

Leveraging DNS Tunneling for Tracking and Scanning

Muddled Libra’s Evolution to the Cloud

Ransomware Retrospective 2024: Unit 42 Leak Site Analysis

Toward Ending the Domain Wars: Early Detection of Malicious Stockpiled Domains

Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors

Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT

Six Malicious Python Packages in the PyPI Targeting Windows Users

Detecting Popular Cobalt Strike Malleable C2 Profile Techniques

IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits

Threat Actors Rapidly Adopt Web3 IPFS Technology

Vice Society: A Tale of Victim Data Exfiltration via PowerShell, aka Stealing off the Land

GoBruteforcer: Golang-Based Botnet Actively Harvests Web Servers

Chinese PlugX Malware Hidden in Your USB Devices?

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

Meddler-in-the-Middle Phishing Attacks Explained MitM

Vice Society: Profiling a Persistent Threat to the Education Sector

Blowing Cobalt Strike Out of the Water With Memory Analysis

Ransom Cartel Ransomware: A Possible Connection With REvil

Credential Gathering From Third-Party Software

Mirai Variant MooBot Targeting D-Link Devices

Legitimate SaaS Platforms Being Used to Host Phishing Attacks

There Is More Than One Way to Sleep: Dive Deep Into the Implementations of API Hammering by Various Malware Families